CVE-2021-38397

CWE-434 UNRESTRICTED UPLOAD OF FILE WITH DANGEROUS TYPE:
The affected product is vulnerable to unrestricted file uploads, which may allow an attacker to remotely execute arbitrary code and cause a denial-of-service condition.
Read more: “Target DCS: Finding, Fixing Critical Bugs In Honeywell Experion PKS

Risk Information

  • CVE ID
  • CVE-2021-38397
  • Vendor
  • Honeywell
  • Product
  • Experion PKS
  • CVSS v3
  • 10.0